Credentials
Secure Password & API Key Generator
Generate strong passwords, API keys, and secrets.
Very strong129 bits
Est. offline crack time: longer than the age of the universe
20
About this tool
Generate strong, random passwords, API keys, and secrets using your browser's cryptographic random generator. Adjustable length and character sets, with a live strength and entropy meter.
Frequently asked questions
- Are the generated values truly random and safe?
- Yes. The generator uses the Web Crypto API's getRandomValues, a cryptographically secure random source, with rejection sampling to avoid bias. Everything is generated locally in your browser and is never transmitted or stored.
- How long should my password or key be?
- For passwords, aim for at least 16 characters with mixed character types. For API keys, secrets, and tokens, 32 or more random characters is a good baseline. Longer is stronger; the entropy meter shows the difference in bits.
- Can I check the strength of a password I already use?
- Yes. The strength checker estimates entropy in bits from the length and character classes present, and gives a rough rating. It runs in your browser and is not a substitute for not reusing passwords across sites.